Download
| Alert*
oval:org.secpod.oval:def:42211
The host is installed with macOS Server before 5.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle an FR-GV-201 issue. Successful exploitation could allow attackers to cause denial of service. oval:org.secpod.oval:def:42213 The host is missing multiple security updates according to Apple advisory, APPLE-SA-2017-09-25-9. The update is required to a denial of service vulnerability. A flaw is present in the application, which fails to handle an unknown vector. Successful exploitation could allow attackers to cause denial ... oval:org.secpod.oval:def:204656 FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service server, designed to allow centralized authentication and authorization for a network. Security Fix: * An out-of-bounds write flaw was found in the way FreeRADIUS server handled certain attribute ... oval:org.secpod.oval:def:89044716 This update for freeradius-server fixes the following issues: Security issues fixed: - CVE-2017-10981: DHCP - Fix memory leak in fr_dhcp_decode. - CVE-2017-10982: Fix buffer over-read in fr_dhcp_decode_options. - CVE-2017-10983: Fix read overflow when decoding option 63. - CVE-2017-10978: Fix rea ... oval:org.secpod.oval:def:89044616 This update for freeradius fixes the following issues: Security issues fixed: - CVE-2017-10988: Decode "signed" attributes correctly. - CVE-2017-10987: Check for option overflowing the packet. - CVE-2017-10985: Fix infinite loop and memory exhaustion with "concat" attributes. - CVE-2017-10984: Fi ... oval:org.secpod.oval:def:89044542 This update for freeradius-server fixes the following issues: - update to 3.0.15 * Bind the lifetime of program name and python path to the module * CVE-2017-10978: FR-GV-201: Check input / output length in make_secret * CVE-2017-10983: FR-GV-206: Fix read overflow when decoding DHCP option 63 * ... oval:org.secpod.oval:def:204541 FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service server, designed to allow centralized authentication and authorization for a network. Security Fix: * An out-of-bounds write flaw was found in the way FreeRADIUS server handled certain attribute ... oval:org.secpod.oval:def:112942 The FreeRADIUS Server Project is a high performance and highly configurable GPLd free RADIUS server. The server is similar in some respects to Livingstons 2.0 server. While FreeRADIUS started as a variant of the Cistron RADIUS server, they dont share a lot in common any more. It now has many more fe ... oval:org.secpod.oval:def:53113 Guido Vranken discovered that FreeRADIUS, an open source implementation of RADIUS, the IETF protocol for AAA , did not properly handle memory when processing packets. This would allow a remote attacker to cause a denial-of-service by application crash, or potentially execute arbitrary code. All thos ... oval:org.secpod.oval:def:51857 freeradius: high-performance and highly configurable RADIUS server Several security issues were fixed in FreeRADIUS. oval:org.secpod.oval:def:1501974 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1501931 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:112936 The FreeRADIUS Server Project is a high performance and highly configurable GPLd free RADIUS server. The server is similar in some respects to Livingstons 2.0 server. While FreeRADIUS started as a variant of the Cistron RADIUS server, they dont share a lot in common any more. It now has many more fe ... oval:org.secpod.oval:def:502068 FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service server, designed to allow centralized authentication and authorization for a network. Security Fix: * An out-of-bounds write flaw was found in the way FreeRADIUS server handled certain attribute ... oval:org.secpod.oval:def:703730 freeradius: high-performance and highly configurable RADIUS server Several security issues were fixed in FreeRADIUS. oval:org.secpod.oval:def:1600745 Out-of-bounds read in fr_dhcp_decode_options:An out-of-bounds read flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a specially crafted DHCP request. Out-of-bounds read in fr_dhcp_decode when ... oval:org.secpod.oval:def:502074 FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service server, designed to allow centralized authentication and authorization for a network. Security Fix: * An out-of-bounds write flaw was found in the way FreeRADIUS server handled certain attribute ... oval:org.secpod.oval:def:603047 Guido Vranken discovered that FreeRADIUS, an open source implementation of RADIUS, the IETF protocol for AAA , did not properly handle memory when processing packets. This would allow a remote attacker to cause a denial-of-service by application crash, or potentially execute arbitrary code. All thos ... oval:org.secpod.oval:def:42664 The host is missing multiple security updates according to Apple advisory, APPLE-SA-2017-10-31-12. A flaw is present in the application, which fails to handle multiple vulnerabilities. Successful exploitation could allow attackers to cause denial of service or possibly execute arbitrary code. |